New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
GOST-2012 not supported #28
Comments
I don't know what you call GOST-2012. Could it be one of the |
@LudovicRousseau Thanks for the quick response.
Something like that "GOSTR3410-2012"
Yeah, I think so too, but which of CKR_VENDOR_DEFINED is "GOSTR3410-2012"? Thanks. |
If you can find the PKCS#11 specification that defines GOSTR3410-2012 then I will add support for it. |
Hi, new GOST in PKCS11 specification published only in russian. I can post link on it if you need. There are constant defines that your looking at.
|
Document in russian. http://wwwold.tc26.ru/methods/project/v6.P11_RusExt_12.pdf |
These tags are in the range of |
I use this algos via PyKCS11, and use, for example, CKR_VENDOR_DEFINED_54321012 for GOSTR3411_2012_256 hash. |
Looks like I found technical details. Specs: Other implementations: |
Thanks for the links @eugene-bright. |
Ok. Does this OASIS spec looks like that you are looking for? |
Can't find anything fresh for year 2012 version. |
@eugene-bright yes, I am looking for something like this The problem reported by @ubushan is that his PKCS#11 library reports values that are NOT defined in an Oasis standard (that is why PyKCS11 uses
Conclusion: I don't see a solution to that conflict What I can propose you is to create a |
I'm new for this area. |
@siyavashi Still not a PKCS#11 standard. It does not really help. |
What I do is I just at the start of my program I add vendor constants to the |
If you read Russian https://habr.com/ru/post/549198/ |
The latest working link to the TC26 document is as follows: Unfortunately, it seems that it still didn't make it into the OASIS standard. |
It's completely irrelevant now |
Hello there!
When I call function C_GetMechanismList (from your example) I can't find there algorithm GOST-2012 in this the list. My token supports algorithm GOST-2012.
This algorithm GOST-2012 is not supported? Will there be support in the near future?
Or am I doing anything wrong?
Thanks!
Mechanism list: ['CKM_RSA_PKCS_KEY_PAIR_GEN', 'CKM_RSA_PKCS', 'CKM_RSA_PKCS_OAEP', 'CKM_MD5', 'CKM_SHA_1', 'CKM_GOSTR3410_KEY_PAIR_GEN', 'CKM_GOSTR3410', 'CKM_GOSTR3410_DERIVE', 'CKR_VENDOR_DEFINED_54321005', 'CKR_VENDOR_DEFINED_54321006', 'CKR_VENDOR_DEFINED_54321007', 'CKM_GOSTR3411', 'CKR_VENDOR_DEFINED_54321012', 'CKR_VENDOR_DEFINED_54321013', 'CKM_GOSTR3410_WITH_GOSTR3411', 'CKR_VENDOR_DEFINED_54321008', 'CKR_VENDOR_DEFINED_54321009', 'CKM_GOST28147_KEY_WRAP', 'CKM_GOST28147_ECB', 'CKM_GOST28147', 'CKM_GOST28147_KEY_GEN', 'CKM_GOST28147_MAC']
The text was updated successfully, but these errors were encountered: